CVE-2013-3392
- EPSS 0.08%
- Veröffentlicht 21.06.2013 21:55:00
- Zuletzt bearbeitet 11.04.2025 00:51:21
Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco WebEx Social allow remote attackers to hijack the authentication of arbitrary users via unspecified vectors, aka Bug IDs CSCuh10405 and CSCuh10355.
CVE-2013-1244
- EPSS 0.19%
- Veröffentlicht 16.05.2013 03:36:22
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site scripting (XSS) vulnerability in the portal module in Cisco WebEx Social allows remote authenticated users to inject arbitrary web script or HTML via a javascript: URL in the link field in a post, aka Bug ID CSCue67199.
- EPSS 0.18%
- Veröffentlicht 16.05.2013 03:36:22
- Zuletzt bearbeitet 11.04.2025 00:51:21
The user-management page in Cisco WebEx Social relies on client-side validation of values in the Screen Name, First Name, Middle Name, Last Name, Email Address, and Job Title fields, which allows remote authenticated users to bypass intended access r...
- EPSS 0.16%
- Veröffentlicht 06.02.2013 12:05:43
- Zuletzt bearbeitet 11.04.2025 00:51:21
The search function in Cisco Webex Social (formerly Cisco Quad) allows remote authenticated users to read files via unspecified parameters, aka Bug ID CSCud40235.
CVE-2012-6397
- EPSS 0.26%
- Veröffentlicht 17.01.2013 15:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site scripting (XSS) vulnerability in Cisco WebEx Social (formerly Cisco Quad) allows remote attackers to inject arbitrary web script or HTML via a crafted RSS service link, aka Bug ID CSCub61977.